[Buildroot] [PATCH] package/nginx: add upstream security fix for CVE-2022-4174{1, 2}
Peter Korsgaard
peter at korsgaard.com
Tue Nov 22 22:56:47 UTC 2022
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
> Fixes the following security issues:
> - CVE-2022-41741: Memory corruption in the ngx_http_mp4_module
> - CVE-2022-41742: Memory disclosure in the ngx_http_mp4_module
> https://mailman.nginx.org/archives/list/nginx-announce@nginx.org/message/RBRRON6PYBJJM2XIAPQBFBVLR4Q6IHRA/
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Committed to 2022.08.x and 2022.02.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list